113.105.80.148

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: SZIDC

Hostname: unknown

Organization: unknown

Usage Type: Organization

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Invalid user pea from 113.105.80.148 port 41094	2020-04-04 03:51:23
attack	2020-04-03T01:15:07.641044ns386461 sshd\[27677\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.148 user=root 2020-04-03T01:15:09.929355ns386461 sshd\[27677\]: Failed password for root from 113.105.80.148 port 34702 ssh2 2020-04-03T01:23:02.913145ns386461 sshd\[2436\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.148 user=root 2020-04-03T01:23:05.074503ns386461 sshd\[2436\]: Failed password for root from 113.105.80.148 port 55938 ssh2 2020-04-03T01:26:38.672989ns386461 sshd\[5698\]: Invalid user nh from 113.105.80.148 port 42572 2020-04-03T01:26:38.677519ns386461 sshd\[5698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.148 ...	2020-04-03 09:11:01
attackspambots	Brute force SMTP login attempted. ...	2020-03-30 04:58:20
attackspambots	$f2bV_matches	2020-03-23 12:03:04

Comments on same subnet:

IP	Type	Details	Datetime
113.105.80.34	attackspambots	Failed password for invalid user buser from 113.105.80.34 port 54068 ssh2	2020-09-10 21:19:09
113.105.80.34	attackbots	Failed password for invalid user buser from 113.105.80.34 port 54068 ssh2	2020-09-10 13:03:37
113.105.80.34	attackbots	Sep 9 20:38:40 ajax sshd[2830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 Sep 9 20:38:42 ajax sshd[2830]: Failed password for invalid user telecomadmin from 113.105.80.34 port 48064 ssh2	2020-09-10 03:49:13
113.105.80.34	attack	Aug 24 14:59:13 abendstille sshd\[6474\]: Invalid user tommy from 113.105.80.34 Aug 24 14:59:13 abendstille sshd\[6474\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 Aug 24 14:59:15 abendstille sshd\[6474\]: Failed password for invalid user tommy from 113.105.80.34 port 36518 ssh2 Aug 24 15:03:55 abendstille sshd\[11306\]: Invalid user ubuntu from 113.105.80.34 Aug 24 15:03:55 abendstille sshd\[11306\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 ...	2020-08-24 21:27:28
113.105.80.34	attackbotsspam	Bruteforce detected by fail2ban	2020-08-12 16:14:18
113.105.80.34	attack	(sshd) Failed SSH login from 113.105.80.34 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 9 13:55:23 amsweb01 sshd[12050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 user=root Aug 9 13:55:24 amsweb01 sshd[12050]: Failed password for root from 113.105.80.34 port 56822 ssh2 Aug 9 14:02:38 amsweb01 sshd[13156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 user=root Aug 9 14:02:40 amsweb01 sshd[13156]: Failed password for root from 113.105.80.34 port 40370 ssh2 Aug 9 14:06:04 amsweb01 sshd[13683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 user=root	2020-08-10 03:14:44
113.105.80.34	attackspambots	Jul 24 16:23:28 rocket sshd[12303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 Jul 24 16:23:29 rocket sshd[12303]: Failed password for invalid user terraria from 113.105.80.34 port 51596 ssh2 Jul 24 16:27:51 rocket sshd[12898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 ...	2020-07-25 00:37:01
113.105.80.34	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-21T21:24:21Z and 2020-07-21T21:32:42Z	2020-07-22 07:28:13
113.105.80.34	attackspambots	Jun 23 07:01:12 vps639187 sshd\[31720\]: Invalid user usr01 from 113.105.80.34 port 52846 Jun 23 07:01:12 vps639187 sshd\[31720\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 Jun 23 07:01:15 vps639187 sshd\[31720\]: Failed password for invalid user usr01 from 113.105.80.34 port 52846 ssh2 ...	2020-06-23 13:36:55
113.105.80.34	attackbots	Jun 21 12:07:41 vlre-nyc-1 sshd\[17155\]: Invalid user student from 113.105.80.34 Jun 21 12:07:41 vlre-nyc-1 sshd\[17155\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 Jun 21 12:07:44 vlre-nyc-1 sshd\[17155\]: Failed password for invalid user student from 113.105.80.34 port 55440 ssh2 Jun 21 12:10:06 vlre-nyc-1 sshd\[17236\]: Invalid user redmine from 113.105.80.34 Jun 21 12:10:06 vlre-nyc-1 sshd\[17236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 ...	2020-06-22 03:21:58
113.105.80.34	attackspam	2020-05-21T08:17:45.349452abusebot-6.cloudsearch.cf sshd[8210]: Invalid user euf from 113.105.80.34 port 39894 2020-05-21T08:17:45.357757abusebot-6.cloudsearch.cf sshd[8210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 2020-05-21T08:17:45.349452abusebot-6.cloudsearch.cf sshd[8210]: Invalid user euf from 113.105.80.34 port 39894 2020-05-21T08:17:47.289347abusebot-6.cloudsearch.cf sshd[8210]: Failed password for invalid user euf from 113.105.80.34 port 39894 ssh2 2020-05-21T08:25:39.339110abusebot-6.cloudsearch.cf sshd[8642]: Invalid user jqc from 113.105.80.34 port 53046 2020-05-21T08:25:39.347700abusebot-6.cloudsearch.cf sshd[8642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.105.80.34 2020-05-21T08:25:39.339110abusebot-6.cloudsearch.cf sshd[8642]: Invalid user jqc from 113.105.80.34 port 53046 2020-05-21T08:25:41.349544abusebot-6.cloudsearch.cf sshd[8642]: Failed password for inva ...	2020-05-21 19:55:06
113.105.80.247	attack	SMB Server BruteForce Attack	2020-05-21 05:41:22
113.105.80.34	attackspam	May 11 13:04:50 ip-172-31-62-245 sshd\[11103\]: Invalid user ghost from 113.105.80.34\ May 11 13:04:51 ip-172-31-62-245 sshd\[11103\]: Failed password for invalid user ghost from 113.105.80.34 port 58118 ssh2\ May 11 13:08:00 ip-172-31-62-245 sshd\[11121\]: Invalid user oracle from 113.105.80.34\ May 11 13:08:02 ip-172-31-62-245 sshd\[11121\]: Failed password for invalid user oracle from 113.105.80.34 port 41102 ssh2\ May 11 13:11:05 ip-172-31-62-245 sshd\[11212\]: Invalid user ftpuser from 113.105.80.34\	2020-05-12 03:32:50
113.105.80.34	attackspambots	Invalid user ld from 113.105.80.34 port 56698	2020-04-21 13:33:43
113.105.80.34	attackbots	SSH Brute-Force Attack	2020-04-21 01:59:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.105.80.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59807
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.105.80.148.			IN	A

;; AUTHORITY SECTION:
.			506	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032201 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 23 12:03:00 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 148.80.105.113.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.80.105.113.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.53.94.190	attack	2020-04-09T08:22:11.038096abusebot.cloudsearch.cf sshd[27494]: Invalid user zimbra from 106.53.94.190 port 43044 2020-04-09T08:22:11.045166abusebot.cloudsearch.cf sshd[27494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.94.190 2020-04-09T08:22:11.038096abusebot.cloudsearch.cf sshd[27494]: Invalid user zimbra from 106.53.94.190 port 43044 2020-04-09T08:22:13.118878abusebot.cloudsearch.cf sshd[27494]: Failed password for invalid user zimbra from 106.53.94.190 port 43044 ssh2 2020-04-09T08:28:25.439380abusebot.cloudsearch.cf sshd[27899]: Invalid user sinusbot3 from 106.53.94.190 port 44228 2020-04-09T08:28:25.452366abusebot.cloudsearch.cf sshd[27899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.94.190 2020-04-09T08:28:25.439380abusebot.cloudsearch.cf sshd[27899]: Invalid user sinusbot3 from 106.53.94.190 port 44228 2020-04-09T08:28:27.537743abusebot.cloudsearch.cf sshd[27899]: Failed pass ...	2020-04-09 19:21:08
222.186.175.182	attackbots	Apr 9 16:22:14 gw1 sshd[18987]: Failed password for root from 222.186.175.182 port 52666 ssh2 Apr 9 16:22:27 gw1 sshd[18987]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 52666 ssh2 [preauth] ...	2020-04-09 19:23:13
51.254.113.107	attackspambots	Brute force attempt	2020-04-09 19:49:53
34.93.175.185	attackbots	Apr 9 07:52:00 tuotantolaitos sshd[19056]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.93.175.185 Apr 9 07:52:02 tuotantolaitos sshd[19056]: Failed password for invalid user test5 from 34.93.175.185 port 58980 ssh2 ...	2020-04-09 19:40:14
164.132.229.22	attack	Bruteforce detected by fail2ban	2020-04-09 19:26:15
31.184.177.6	attackspambots	$f2bV_matches	2020-04-09 19:50:50
2.227.254.144	attackspam	$f2bV_matches	2020-04-09 19:52:01
1.234.23.23	attackspambots	Apr 9 12:48:24 xeon sshd[19742]: Failed password for invalid user 2709 from 1.234.23.23 port 59864 ssh2	2020-04-09 19:11:10
193.252.189.177	attackbots	Bruteforce detected by fail2ban	2020-04-09 19:18:53
61.224.178.16	attackbotsspam	[portscan] tcp/1433 [MsSQL] [portscan] tcp/21 [FTP] [scan/connect: 12 time(s)] *(RWIN=65535)(04091111)	2020-04-09 19:48:39
104.250.52.130	attackbotsspam	$f2bV_matches	2020-04-09 19:07:12
183.89.212.84	attack	Dovecot Invalid User Login Attempt.	2020-04-09 19:10:10
165.227.94.166	attackspambots	Automatic report - XMLRPC Attack	2020-04-09 19:41:13
201.116.194.210	attackspam	2020-04-09T04:46:12.563780homeassistant sshd[17859]: Failed password for invalid user deploy from 201.116.194.210 port 60526 ssh2 2020-04-09T11:08:37.281488homeassistant sshd[17583]: Invalid user test from 201.116.194.210 port 60943 2020-04-09T11:08:37.291114homeassistant sshd[17583]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.116.194.210 ...	2020-04-09 19:30:41
213.25.203.130	attackbotsspam	Hits on port : 22	2020-04-09 19:28:40

Recently Reported IPs

62.142.170.124	88.71.147.66	203.150.243.176	146.95.176.64
166.88.107.181	183.88.178.51	50.2.185.86	111.229.197.88
23.80.97.79	23.80.97.227	221.124.50.217	23.106.219.74
120.227.0.46	104.129.130.233	190.47.151.88	207.140.113.4
185.171.24.43	23.236.232.163	170.209.3.121	223.150.196.199